Q50 — AWS ANS-C01 Ch.1

Question 50 of 100 | ← Chapter 1

A company is deploying AWS Cloud WAN with edge locations in the us-east-1 Region and the ap-southeast-2 Region. Individual AWS Cloud WAN Segments are configured for the development environment, the production environment, and the shared services environment at each edge Location. Many new VPCs will be deployed for the environments and will be configured as attachments to the AWS Cloud WAN core network. The company's network team wants to ensure that VPC attachments are configured for the correct segment. The network team will tag the VPC Attachments by using the Environment key with a value of the corresponding environment segment name. The segment for the production Environment in us-east-1 must require acceptance for attachment requests. All other attachment requests must not require acceptance. Which solution will meet these requirements?

Correct Answer: B. Create a rule with a number of 100 that requires acceptance for attachments to the production segment. In the rule, set the condition logic To the "and" value. Include conditions that require a tag:Environment value of Production and a Region value of us-east-1. Create a rule with a Number of 200 that does not require acceptance to map any tag.Environment values to their respective segments.

Explanation

AWS Cloud WAN策略规则按优先级顺序处理,数值越小优先级越高。规则100配置为“AND”逻辑,同时匹配标签键“Environment”值为“Production”和区域为“us-east-1”,确保仅该组合需要手动审批。规则200处理其他所有标签自动关联对应Segment且无需审批。根据AWS文档,规则条件使用“AND”时所有条件必须同时满足,而高层级规则优先执行,后续规则处理剩余场景。选项B的配置逻辑确保生产环境的严格审批,其他环境自动处理。错误选项因条件逻辑或优先级顺序不符合要求。AWS Cloud WAN策略规则配置参考《AWS Networking Guide》。